$ rpki-client -vvf rpki.apnic.net/member_repository/A91CC1EB/AC384AA6DD8211EB958D1C30C4F9AE02/U05nXomsmsMC9TCid1KM-Bo8UwY.mft File: U05nXomsmsMC9TCid1KM-Bo8UwY.mft (raw, json) Hash identifier: NW4JDAnTOnXgof5MYy/kBmafqRGnJdDp0trXEr8SSw0= Subject key identifier: E4:62:1D:E0:39:BE:E8:89:93:74:32:6C:FE:94:B9:4D:56:A0:65:56 Authority key identifier: 53:4E:67:5E:89:AC:9A:C3:02:F5:30:A2:77:52:8C:F8:1A:3C:53:06 Certificate issuer: /CN=A91CC1EB/serialNumber=534E675E89AC9AC302F530A277528CF81A3C5306 Certificate serial: 0589 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/U05nXomsmsMC9TCid1KM-Bo8UwY.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91CC1EB/AC384AA6DD8211EB958D1C30C4F9AE02/U05nXomsmsMC9TCid1KM-Bo8UwY.mft Manifest number: 0576 Signing time: Fri 28 Mar 2025 23:40:16 +0000 Manifest this update: Fri 28 Mar 2025 23:40:16 +0000 Manifest next update: Fri 04 Apr 2025 23:40:16 +0000 Files and hashes: 1: U05nXomsmsMC9TCid1KM-Bo8UwY.crl (hash: iHx9XQVs7o904vw6s5BjxqSMX40qYzrwV5Trqy6m6XI=) 2: 5C0006B4E1B711EEA6D7F740C4F9AE02.roa (hash: 4jfL7SNWxDFOPvyEexB/Au04m937KqyBQLuHPsEG/BI=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91CC1EB/AC384AA6DD8211EB958D1C30C4F9AE02/U05nXomsmsMC9TCid1KM-Bo8UwY.crl rsync://rpki.apnic.net/member_repository/A91CC1EB/AC384AA6DD8211EB958D1C30C4F9AE02/U05nXomsmsMC9TCid1KM-Bo8UwY.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/U05nXomsmsMC9TCid1KM-Bo8UwY.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 04 Apr 2025 23:40:15 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1417 (0x589) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91CC1EB Validity Not Before: Mar 28 23:40:16 2025 GMT Not After : Apr 4 23:40:16 2025 GMT Subject: CN=67e73360-622f Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a9:23:88:ca:0d:89:83:f3:ad:c6:fb:21:85:51: 1e:5a:8d:21:63:64:5b:b5:4b:a0:92:de:4e:ee:ff: c2:32:44:11:5a:29:44:d9:37:cb:cf:5e:09:79:19: 82:5e:ae:43:e3:b9:c2:f9:a8:e4:3f:d3:6e:81:91: 23:9e:08:0d:54:c8:38:68:f2:74:b4:44:48:18:a7: 1d:1f:e7:56:d8:96:36:68:60:87:84:5c:e6:44:3d: 8f:22:b8:3e:15:53:db:c4:03:f1:8e:7a:aa:30:73: 05:77:7a:34:28:f9:51:01:ed:cb:4d:ba:dc:6b:e7: dc:b3:0a:35:cd:22:18:ae:f2:a1:4f:8a:d8:20:9e: 08:fb:54:c3:ac:a8:3e:0d:5f:da:5c:98:2e:02:90: f0:9e:b9:6b:02:eb:55:db:b4:87:b8:df:43:9f:5c: ee:f5:79:6b:ee:7f:64:84:1e:cf:f2:45:c9:fb:6c: 6f:55:b9:e7:15:b0:4d:86:3b:2e:d9:5c:29:b0:c6: d9:61:f5:c0:d0:a9:a5:61:78:f3:7d:86:2a:5c:28: 52:04:40:ff:7c:39:20:f3:f4:b2:59:03:04:d1:74: 32:7f:3b:67:3d:58:39:cb:d7:31:70:4c:4a:dd:cc: ff:20:a5:b6:49:3b:12:e9:41:84:a6:2b:2c:dd:38: 87:03 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: E4:62:1D:E0:39:BE:E8:89:93:74:32:6C:FE:94:B9:4D:56:A0:65:56 X509v3 Authority Key Identifier: keyid:53:4E:67:5E:89:AC:9A:C3:02:F5:30:A2:77:52:8C:F8:1A:3C:53:06 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91CC1EB/AC384AA6DD8211EB958D1C30C4F9AE02/U05nXomsmsMC9TCid1KM-Bo8UwY.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/U05nXomsmsMC9TCid1KM-Bo8UwY.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91CC1EB/AC384AA6DD8211EB958D1C30C4F9AE02/U05nXomsmsMC9TCid1KM-Bo8UwY.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 7d:87:5e:50:38:a8:95:6e:47:5b:42:d8:c4:87:26:f5:8d:58: 13:6f:1a:97:72:6c:44:45:e6:4d:68:7f:a4:8b:55:11:b9:09: 93:5b:41:ab:8d:ae:43:fa:e0:d1:0c:77:c9:75:a9:e9:a1:f8: 0d:23:22:20:77:0f:b7:e0:e3:96:08:a6:4d:f7:c1:19:d9:1b: c2:0e:73:f6:85:d4:69:c9:33:d6:dc:1a:78:75:4d:f5:2e:0f: f7:85:c4:58:94:ad:c5:b1:31:b2:58:ad:ae:9f:9c:60:8c:10: c9:30:69:1f:6c:95:99:16:de:ed:7f:7e:f7:24:69:f0:0d:ac: 63:5a:e2:27:e9:c5:ec:01:25:e6:48:16:7f:96:70:92:30:f6: 45:4c:23:26:8c:b9:02:35:5a:ee:6e:1c:a1:4b:d6:15:12:59: ba:19:ee:f6:b5:8d:b7:8e:6a:9c:55:84:13:37:4c:e4:6d:ad: 48:13:69:8e:63:c9:bb:24:c3:b7:b4:96:b3:07:52:b8:81:ef: a8:92:b1:70:b3:47:dd:ec:cf:66:6f:c3:82:e5:77:12:2c:f8: 65:55:11:b7:ac:47:b2:46:03:29:cd:33:8d:4e:fd:da:a8:73: e3:87:da:db:df:f1:0b:ac:bc:35:d1:c0:9d:4c:2d:42:78:6d: ff:a3:97:46 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICBYkwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx Q0MxRUIxMTAvBgNVBAUTKDUzNEU2NzVFODlBQzlBQzMwMkY1MzBBMjc3NTI4Q0Y4 MUEzQzUzMDYwHhcNMjUwMzI4MjM0MDE2WhcNMjUwNDA0MjM0MDE2WjAYMRYwFAYD VQQDEw02N2U3MzM2MC02MjJmMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAqSOIyg2Jg/OtxvshhVEeWo0hY2RbtUugkt5O7v/CMkQRWilE2TfLz14JeRmC Xq5D47nC+ajkP9NugZEjnggNVMg4aPJ0tERIGKcdH+dW2JY2aGCHhFzmRD2PIrg+ FVPbxAPxjnqqMHMFd3o0KPlRAe3LTbrca+fcswo1zSIYrvKhT4rYIJ4I+1TDrKg+ DV/aXJguApDwnrlrAutV27SHuN9Dn1zu9Xlr7n9khB7P8kXJ+2xvVbnnFbBNhjsu 2VwpsMbZYfXA0KmlYXjzfYYqXChSBED/fDkg8/SyWQME0XQyfztnPVg5y9cxcExK 3cz/IKW2STsS6UGEpiss3TiHAwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFORiHeA5 vuiJk3QybP6UuU1WoGVWMB8GA1UdIwQYMBaAFFNOZ16JrJrDAvUwondSjPgaPFMG MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFDQzFFQi9BQzM4NEFBNkRE ODIxMUVCOTU4RDFDMzBDNEY5QUUwMi9VMDVuWG9tc21zTUM5VENpZDFLTS1CbzhV d1kuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL1UwNW5Yb21zbXNNQzlUQ2lkMUtNLUJvOFV3WS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFD QzFFQi9BQzM4NEFBNkREODIxMUVCOTU4RDFDMzBDNEY5QUUwMi9VMDVuWG9tc21z TUM5VENpZDFLTS1CbzhVd1kubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQB9h15QOKiVbkdbQtjEhyb1jVgTbxqXcmxEReZNaH+ki1URuQmTW0Gr ja5D+uDRDHfJdanpofgNIyIgdw+34OOWCKZN98EZ2RvCDnP2hdRpyTPW3Bp4dU31 Lg/3hcRYlK3FsTGyWK2un5xgjBDJMGkfbJWZFt7tf373JGnwDaxjWuIn6cXsASXm SBZ/lnCSMPZFTCMmjLkCNVrubhyhS9YVElm6Ge72tY23jmqcVYQTN0zkba1IE2mO Y8m7JMO3tJazB1K4ge+okrFws0fd7M9mb8OC5XcSLPhlVRG3rEeyRgMpzTONTv3a qHPjh9rb3/ELrLw10cCdTC1CeG3/o5dG -----END CERTIFICATE-----Generated at Fri Apr 4 22:00:37 2025 by rpki-client